CVE-2013-7014

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 2.1

Description The issue is related to an integer signedness error in the add bytes l2 c function in libavcodec/pngdsp.c, which can be triggered by crafted PNG data. This error can cause a denial of service due to out-of-bounds array access and may have other unspecified impacts.

Recommendations For versions prior to 2.1, update to version 2.1 or later to resolve the issue.